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The present invention relates to a conditional access system wherein digitised 
multimedia data are transmitted in a continuous transport stream of successive 
data packets. The invention also relates to a method of producing a partially 
scrambled or corrupted transport stream from a clear transport stream containing 
10 digitised multimedia data in successive data packets. 

Data security is an important aspect in multimedia commerce. Conditional 
access systems (CAS) mainly rely on scrambling of a transport stream containing 
protected multimedia contents. In Digital Video Broadcast ("DVB"), for example, 
only subscribers with a conditional access module ("CAM") and a valid 
15 subscriber card (Smart Card "SC") can descramble a scrambled transport stream 
and obtain TV contents in the clear for application to a TV set. The conditional 
access module must have the capability to process an MPEG stream in real-time 
at a processing rate of at least about 1.5 MB/sec, thereby placing high demands of 
performance on the hardware used in the CAM. 
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The present invention provides a conditional access system for multimedia 
data that offers acceptable security at drastically reduced requirements on 
hardware performance. For specific embodiments that include decryption circuitry 
inside a user smart card, the level of security of such system is even higher than 
5 that of conventional ones. 

According to the invention, a selectively encrypted transport stream is formed 
from a clear transport stream by detecting particular data packets within the clear 
transport stream, removing and encrypting the particular data packets with an 
event encryption key, and inserting the encrypted data packets into the remaining 
clear transport stream at insertion positions corresponding to the original 
positions of the particular data packets in the clear transport stream. Since only 
selected data packets must be processed for encryption/decryption, the amount of 
processing is drastically reduced. 
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According to a specific embodiment of the invention, a selectively encrypted 
transport stream is formed from a clear transport stream by detecting particular 
data packets within the clear transport stream, removing and encrypting the 
particular data packets with an event's encryption key, and inserting the 
encrypted data packets into the remaining clear transport stream at insertion 
positions ahead in time with respect to the original positions of the particular data 
20 packets in the clear transport stream. 

The invention uses the fact that in a typical compressed multimedia data 
stream such as an MPEG stream, the contents of particular data packets are 
propagated to successive data packets, i.e. successive data packets are dependant 
on contents of preceding data packets, so that by encrypting only particular data 
25 packets, many successive data packets are affected, resulting in a sufficient overall 
scrambling of the data stream. Given the moderate hardware requirements, 
decryption can be performed by available Smart Cards, enabling a hardware 
implementation where the security entirely resides in the Smart Card. 
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Further, because the key can be changed frequently and a highly effective 
encryption algorithm such as, for example, DES or 3DES can be used, the security 
in the proposed system is sufficient for the particular needs. A possibility to 
enhance security is to use a non public encryption algorithm. 

5 For low value multimedia contents, or in a pay-per-event environment, it will 
generally be sufficient to send a fixed event decryption key prior to actual 
transmission of the selectively encrypted transport stream. For higher value 
multimedia contents, the event decryption key can be changed frequently. In a 
DVB environment, for example, the event decryption keys can be transmitted 
10 with the EMMs (Entitlement Management Message) in the transport stream. A 
user key available in the user smart card will be used to decrypt in the EMMs, the 
event decryption keys. Another possibility is to have the event decryption key 
available in an one-event smart card, that will be sold to users. 

In the preferred embodiment of the invention, the event decryption key is 
15 transmitted to an authorised receiver provided with a "light" conditional access 
module. As used here, light means that the conditional access module will not 
necessarily include hardware or software decryption resources as the decryption 
may be performed in the user smart card. The selectively encrypted transport 
stream is transmitted to the receiver. The light conditional access module detects 
20 encrypted data packets, removes the encrypted data packets from the received 
transport stream, decrypts the encrypted data packets with the event decryption 
key, and inserts the decrypted data packets into the remaining received transport 
stream at positions corresponding to the respective original positions of the 
particular data packets within the clear transport stream. Preferably, the encrypted 
25 data packets are inserted at positions a predetermined number of data packets 
ahead of respective original positions. 



Further advantages and features of the invention will appear from the 
following description of preferred embodiments with reference to the drawings. In 
the drawings: 



Figs. 1 to 6 are block diagrams with descriptive legends for different 
embodiments of a headend equipment for producing selectively encrypted data 
streams containing digitised multimedia data; 

Figs. 7 to 10 are block diagrams with descriptive legends for different 
embodiments of a user equipment for decoding selectively encrypted data streams 
containing digitised multimedia data; 

Fig. 1 1 is a diagram illustrating a first embodiment of a method of producing a 
scrambled or corrupted transport stream from a clear transport stream by selective 
encryption; 

Fig. 12 is a diagram illustrating a method of producing a clear transport stream 
from a scrambled or corrupted transport stream produced with the method of Fig. 
11; 

Fig. 13 is a diagram illustrating a second embodiment of a method of 
producing a scrambled or corrupted transport stream from a clear transport stream 
by selective encryption; and 

Fig. 14 is a diagram illustrating a third embodiment of a method of producing 
a scrambled or corrupted transport stream from a clear transport stream by 
selective encryption, wherein the scrambled or corrupted transport stream consists 
of selectively encrypted packets and DVB scrambled packets. 



Claims 



1. A conditional access system wherein digitised multimedia data are 
transmitted in a continuous transport stream of successive data packets, 
characterised in that a selectively encrypted transport stream is formed from a 
clear transport stream by detecting particular data packets within the clear 
transport stream, removing and encrypting the particular data packets with an 
event encryption key, and inserting the encrypted data packets into the remaining 
clear transport stream at insertion positions ahead in time with respect to the 
original positions of the particular data packets in the clear transport stream. 

2. A conditional access system wherein digitised multimedia data are 
transmitted in a continuous transport stream of successive data packets, 
characterised in that a selectively encrypted transport stream is formed from a 
clear transport stream by detecting particular data packets within the clear 
transport stream, removing and encrypting the particular data packets with an 
event encryption key, and inserting the encrypted data packets into the remaining 
clear transport stream at insertion positions corresponding to the original 
positions of the particular data packets in the clear transport stream. 

3. The system of claim 1 or claim 2, wherein a event decryption key is 
provided to an authorised receiver provided with the conditional access system, 
the selectively encrypted transport stream is transmitted to the receiver, the 
conditional access system detects encrypted data packets, removes the encrypted 
data packets from the received transport stream, decrypts the encrypted data 
packets with the event decryption key, and inserts the decrypted data packets into 
the remaining received transport stream at positions corresponding to the 
respective original positions of the particular data packets within the clear 
transport stream. 

4; The system of claim 3, wherein the event decryption key is provided on a 
one-event smart card. 
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5. The system of claim 3, wherein the event decryption key is provided on a 
one-limited-period smart card. 

6. The system of claim 3, wherein the event decryption key in a DVB 
environment is transmitted in specific EMMs protected by a user encryption key, 

5 the corresponding user decryption key being provided in the CAS, on a user smart 
card or on a user SIM 

7. The system of claims 2 and 3, wherein the conditional access system has a 
buffer memory to store clear data packets while an encrypted data packet is 
decrypted. 

0 8. The system of claim 1 or claim 3, wherein said encrypted data packets are 
inserted at positions a predetermined number of data packets ahead of respective 
original positions. 

9. The system of claim any of claims 3 to 8, wherein said conditional access 
system includes a chip card with decryption circuitry thereon. 

> 10. The system of claim 9, wherein the chip card is a SIM card. 

11. The system of any of the preceding claims, wherein the decryption key is 
transmitted to a receiver with the selectively encrypted data stream. 

12. The system of claim 11, wherein the event decryption key is frequently 
changed. 

13. The system of any of claims 1 to 1 1, wherein the event decryption key is a 
fixed key distributed on a pay-per-event basis. 

14. The system of claim 13, wherein the event decryption key is transmitted in 
a GSM network prior to an event and loaded into a SIM or smart card inserted in a 
SIM or smart card reader of a mobile phone. 



15. The system of any of the preceding claims, wherein the event decryption 
key is provided encrypted with a user encryption key and a corresponding user 
decryption key is also provided to an authorized user. 

16. The system of any of the preceding claims, comprising a headend encoder 
for producing the selectively encrypted data stream, the headend encoder 
including a Common Interface CI that in turn has a smart card SC interface for a 
smart card that has encryption circuitry thereon. 

17. The system of any of claims 1 to 15, comprising a headend encoder for 
producing the selectively encrypted data stream, the headend encoder including a 
Common Interface CI for a PC card module that has encryption circuitry thereon. 

18. The system of any of claims 1 to 15, comprising a headend encoder for 
producing the selectively encrypted data stream, the headend encoder including a 
Personal Computer PC with an interface for a chip card containing an event 
encryption key or a user encryption key, the encryption being processed in the PC. 

19. The system of any of claims 1 to 15, comprising a headend encoder for 
producing the selectively encrypted data stream, the headend encoder including an 
encoder CI module with a CI&TS (Common Interface and Transport Stream) 
interface to a professional Set-Top-Box STB. 

20. The system of claim 19, wherein the encoder CI module further comprises 
a high speed interface to a PC, a clear transport stream being sent to the PC via the 
high speed interface to be selectively encrypted by the PC or by a PC peripheral, 
said PC peripheral being one of the following 

- a smart card reader SCR for a smart card SC having encryption 
circuitry thereon; 

- an encryption PCMCIA module having encryption circuitry and 
forming a SCR for a headend smart card. 
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21. The system of any of the preceding claims, wherein said particular data 
packets are of a nature such that their contents are propagated to successive data 
packets. 

22. The system of any of claims 1 to 20, wherein said particular data packets 
are data packets containing sign bits of DCT coefficients in an MPEG stream. 

23. The system of any of claims 1 to 20, wherein, every n* data packet of the 
transport stream is encrypted, n being a fixed number. 

24. The system of any of claims 1 to 20, wherein every n* data packet of the 
transport stream is encrypted, n being a variable number. 

25. The system of claim 24, wherein the variable number n is randomly 
variable. 

26. The system of claim 24, wherein the variable number n is variable as a 
function of data packet contents. 

27. The system of any of claims 3 to 26, wherein the conditional access system 
15 is embedded in a user Set-Top-Box STB. 

28. The system of any of claims 3 to 26, wherein said conditional access 
system includes a PC card with a Common Interface CI for connection to a user 
Set-Top-Box STB. 

29. The system of claim 27 or claim 28, wherein said user Set-Top-Bbx STB 
20 is capable of detecting a current encryption level of the transport stream and to 

direct the transport stream, in accordance with the detected encryption level, to 
decryption circuitry associated with that encryption level. 

30. The system of claim 27 or claim 28, wherein the user Set-Top-Box STB is 
capable of detecting at least some of the following encryption levels of the 

25 transport stream : 

- None 



DVB only 



- DVB and selective encryption 

- Selective encryption only; 

and the Set-Top-Box STB is capable of directing the transport stream 
to at least one of the following decryption means: 

- None 

An embedded conditional access system in the Set-Top-Box STB 
able to cope with DVB only, 

An embedded conditional access system in the Set-Top-Box STB 
able to cope with selective encryption only, 

An embedded conditional access system in the Set-Top-Box STB 
able to cope with DVB and with selective encryption, 

A conditional access module in the 1 st Common Interface (CI) slot 
of the Set-Top-Box STB able to cope with DVB only, 

A conditional access module in the 1 st Common Interface (CI) slot 
of the Set-Top-Box STB able to cope with selective encryption 
only, 

A conditional access module in the 1 st Common Interface (CI) slot 
of the Set-Top-Box STB able to cope with DVB and with selective 
encryption, 

A conditional access module in the 2 nd Common Interface (CI) slot 
of the Set-Top-Box STB able to cope with DVB only, 

A conditional access module in the 2 nd Common Interface (CI) slot 
of the Set-Top-Box STB able to cope with selective encryption 
only, 
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- A conditional access module in the 2 nd Common Interface (CI) slot 
of the Set-Top-Box STB able to cope with DVB and with selective 
encryption, 

- A Smart Card (SC) in a Smart Card Reader (SCR). 

31. A method of producing a partially scrambled or corrupted transport stream 
from a clear transport stream containing digitised multimedia data in successive 
data packets, characterised in that a selectively encrypted transport stream is 
formed from a clear transport stream by detecting particular data packets within 
the clear transport stream, removing and encrypting the particular data packets 
with an event encryption key, and inserting the encrypted data packets into the 
remaining clear transport stream at insertion positions ahead in time with respect 
to the original positions of the particular data packets in the clear transport stream. 

32. A method of producing a partially scrambled or corrupted transport stream 
from a clear transport stream containing digitised multimedia data in successive 
data packets, characterised in that a selectively encrypted transport stream is 
formed from a clear transport stream by detecting particular data packets within 
the clear transport stream, removing and encrypting the particular data packets 
with an event encryption key, and inserting the encrypted data packets into the 
remaining clear transport stream at insertion positions corresponding to the 
original positions of the particular data packets in the clear transport stream. 

33. A method of producing a scrambled transport stream from a clear transport 
stream containing digitised multimedia data in successive data packets, 
characterised in that 

- selected data packets are determined within the clear transport 
stream; 



the selected data packets are processed to obtain control words CW 
therefrom; 
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data packets following each selected data packet are DVB 
scrambled using control words CW obtained from the preceding 
selected data packet; and 

the selected data packets are encrypted with an event encryption 
key. 



34. The method of claim 33, wherein the encrypted selected data packets are 
inserted in the scrambled transport stream at positions ahead in time with respect 
to the original positions of the selected data packets in the clear transport stream. 
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Abstract 

A conditional access system for multimedia data is disclosed that offers 
acceptable security at drastically reduced requirements on hardware performance. 
5 A selectively encrypted transport stream is formed from a clear transport stream 
by detecting particular data packets within the clear transport stream, removing 
and encrypting the particular data packets with an event encryption key, and 
inserting the encrypted data packets into the remaining clear transport stream at 
insertion positions corresponding to the original positions of the particular data 
10 packets in the clear transport stream. For specific embodiments that include 
decryption circuitry inside a user smart card, the level of security of such system 
is even higher than that of conventional ones. 
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